Capture Keystrokes
Alan Neville
neville.alan at gmail.com
Wed Jul 14 22:29:36 EST 2010
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 14/07/2010 01:11, Peter Stuge wrote:
> Alan Neville wrote:
>> capture keystrokes from an established SSH session.
> ..
>> I'd like to explore the possibility of modifying openssh to record
>> keystrokes to ensure authenticity.
>
> Authenticity of what?
I'd like to try retain the authenticity of the session as not to alert
users/attackers that keystrokes are being recorded.
>
> Would you want to modify the client or the server? I guess the
> server. Maybe you would be interested in:
>
> http://freshmeat.net/projects/ttysnoop26/
>
This is for Linux. The link I provided shows the project is an iPhone
Honeypot which uses PTY type terminals (BSD style) and not TTY.
>
>> can I generate a static key which I could use to decrypt the
>> captured traffic later?
>
> Not with protocol version 2.
>
>
> //Peter
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev at mindrot.org
> https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
- --
Alan Neville,
Postgraduate Education Officer,
DCU Students' Union 2009/2010,
BS.c Computer Applications DCU (Completed)
MS.c Security and Forensics DCU (Attending)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQEcBAEBAgAGBQJMPa2wAAoJEJ1FG8f8Uuluah0H/jVzYD8J/ZHMeAKm5X0cLhQv
iVmZNpSb4SahCPgpyr1LNsTKTYg3UNdoYLE0KnGUxwg2ZpmaN548ZX8gy5Ms8/VH
/0YVwyPuowpxjxE5qzrwWcw5WclOW6Ds/bUpH4xVIyUs7T/a58ncOdUke7OAE9/G
m4JhBkaH7WvescbiA0yowBhq9lwdiANRqSwD0YRGjSWSH/N6AFpINB8UWjZ2fz2f
dgQDJPEFunpJjtvOmhtshGu1bjN51BWEvjxuiyBdq71td4eJEj2ADFq/aFBVN255
yHVUNwukojSTsvd6bTC0Aw2f1d2E7DsRkVoDyCPaYLjm3zM0ccdsxTmi8hYzec8=
=ngN5
-----END PGP SIGNATURE-----
More information about the openssh-unix-dev
mailing list